Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-19 | CVE-2023-46262 | Server-Side Request Forgery (SSRF) vulnerability in Ivanti Avalanche An unauthenticated attacked could send a specifically crafted web request causing a Server-Side Request Forgery (SSRF) in Ivanti Avalanche Remote Control server. | 7.5 |
| 2023-12-14 | CVE-2023-40630 | Server-Side Request Forgery (SSRF) vulnerability in Joomcode Jcdashboard 1.0.0/1.1.30 Unauthenticated LFI/SSRF in JCDashboards component for Joomla. | 9.8 |
| 2023-12-13 | CVE-2023-47619 | Server-Side Request Forgery (SSRF) vulnerability in Audiobookshelf Audiobookshelf is a self-hosted audiobook and podcast server. | 6.5 |
| 2023-12-07 | CVE-2022-45362 | Server-Side Request Forgery (SSRF) vulnerability in Paytm Payment Gateway 2.7.0 Server-Side Request Forgery (SSRF) vulnerability in Paytm Paytm Payment Gateway.This issue affects Paytm Payment Gateway: from n/a through 2.7.0. | 6.5 |
| 2023-12-07 | CVE-2023-49746 | Server-Side Request Forgery (SSRF) vulnerability in Softaculous Speedycache Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2. | 4.3 |
| 2023-12-04 | CVE-2023-48910 | Server-Side Request Forgery (SSRF) vulnerability in Microcks Microcks up to 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. | 9.8 |
| 2023-11-28 | CVE-2023-48022 | Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0 Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API. | 9.8 |
| 2023-11-28 | CVE-2023-48023 | Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0 Anyscale Ray 2.6.3 and 2.8.0 allows /log_proxy SSRF. | 9.1 |
| 2023-11-27 | CVE-2023-46480 | Server-Side Request Forgery (SSRF) vulnerability in Owncast Project Owncast 0.1.1 An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function. | 9.8 |
| 2023-11-27 | CVE-2023-5974 | Server-Side Request Forgery (SSRF) vulnerability in WPB Show Core Project WPB Show Core 2.2 The WPB Show Core WordPress plugin through 2.2 is vulnerable to server-side request forgery (SSRF) via the `path` parameter. | 9.8 |